Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
stormshield stormshield network security vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-4450
The function PEM_read_bio_ex() reads a PEM file from a BIO and parses and decodes the "name" (e.g. "CERTIFICATE"), any header data and the payload data. If the function succeeds then the "name_out", "header" and "data" arguments a...
Openssl Openssl
Stormshield Stormshield Network Security
1 Github repository
7.5
CVSSv3
CVE-2022-40617
strongSwan prior to 5.9.8 allows remote malicious users to cause a denial of service in the revocation plugin by sending a crafted end-entity (and intermediate CA) certificate that contains a CRL/OCSP URL that points to a server (under the attacker's control) that doesn'...
Strongswan Strongswan
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 22.04
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 37
Stormshield Stormshield Network Security
7.5
CVSSv3
CVE-2022-27812
Flooding SNS firewall versions 3.7.0 to 3.7.29, 3.11.0 to 3.11.17, 4.2.0 to 4.2.10, and 4.3.0 to 4.3.6 with specific forged traffic, can lead to SNS DoS.
Stormshield Network Security
7.5
CVSSv3
CVE-2022-30279
An issue exists in Stormshield Network Security (SNS) 4.3.x prior to 4.3.8. The event logging of the ASQ sofbus lacbus plugin triggers the dereferencing of a NULL pointer, leading to a crash of SNS. An attacker could exploit this vulnerability via forged sofbus lacbus traffic to ...
Stormshield Network Security
7.5
CVSSv3
CVE-2022-23989
In Stormshield Network Security (SNS) prior to 3.7.25, 3.8.x up to and including 3.11.x prior to 3.11.13, 4.x prior to 4.2.10, and 4.3.x prior to 4.3.5, a flood of connections to the SSLVPN service might lead to saturation of the loopback interface. This could result in the block...
Stormshield Network Security
7.5
CVSSv3
CVE-2021-45885
An issue exists in Stormshield Network Security (SNS) 4.2.2 up to and including 4.2.7 (fixed in 4.2.8). Under a specific update-migration scenario, the first SSH password change does not properly clear the old password.
Stormshield Network Security
7.5
CVSSv3
CVE-2002-20001
The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. The client needs ver...
Balasys Dheater -
Siemens Scalance W1750d Firmware
Suse Linux Enterprise Server 15
Suse Linux Enterprise Server 11
Suse Linux Enterprise Server 12
F5 Big-iq Centralized Management 7.1.0
F5 Traffix Signaling Delivery Controller 5.2.0
F5 Traffix Signaling Delivery Controller 5.1.0
F5 Big-iq Centralized Management
F5 Big-ip Service Proxy 1.6.0
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Advanced Web Application Firewall
F5 Big-ip Analytics
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Security Manager
F5 Big-ip Application Visibility And Reporting
F5 Big-ip Carrier-grade Nat
F5 Big-ip Ddos Hybrid Defender
F5 Big-ip Domain Name System
F5 Big-ip Edge Gateway
F5 Big-ip Fraud Protection Service
3 Github repositories
7.5
CVSSv3
CVE-2021-28127
An issue exists in Stormshield SNS up to and including 4.2.1. A brute-force attack can occur.
Stormshield Stormshield Network Security
Stormshield Stormshield Network Security 4.2.1
7.5
CVSSv3
CVE-2021-28665
Stormshield SNS with versions prior to 3.7.18, 3.11.6 and 4.1.6 has a memory-management defect in the SNMP plugin that can lead to excessive consumption of memory and CPU resources, and possibly a denial of service.
Stormshield Network Security
7.5
CVSSv3
CVE-2020-7466
The PPP implementation of MPD prior to 5.9 allows a remote attacker who can send specifically crafted PPP authentication message to cause the daemon to read beyond allocated memory buffer, which would result in a denial of service condition.
Mpd Project Mpd
Stormshield Stormshield Network Security
Stormshield Stormshield Network Security 4.4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »